Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

taint process output #270

Merged
merged 5 commits into from
Mar 29, 2019
Merged

taint process output #270

merged 5 commits into from
Mar 29, 2019

Commits on Mar 27, 2019

  1. ifc: taint proof of concept 

    This commit adds the Purebred.Types.IFC module for information flow
control (IFC) types and functions.  We begin with a trivial taint
mechanism.  A single aspect of the implementation - tryRunProcess -
is updated to use it, for demonstration and review purposes.

Part of: #269
    @frasertweedale
    frasertweedale committed Mar 27, 2019
    Configuration menu
    Copy the full SHA
    7e2b74c View commit details
    Browse the repository at this point in the history

Commits on Mar 28, 2019

  1. ifc: taint sendmail stderr 

    Taint sendmail stderr.  Also re-export some typed-process
ProcessConfig-related types and functions from
Purebred.System.Process.  This is a move to avoid importing
System.Process.Typed anywhere in purebred, except this one module,
ensuring that all the "run process" functions that are available
taint the process output.

Part of: #269
    @frasertweedale
    frasertweedale committed Mar 28, 2019
    Configuration menu
    Copy the full SHA
    0d41989 View commit details
    Browse the repository at this point in the history

  2. ifc: taint 'notmuch config-get' output 

    Create tainting version of readProcess and update
Storage.Notmuch.getDatabasePath to use it.

Part of: #269
    @frasertweedale
    frasertweedale committed Mar 28, 2019
    Configuration menu
    Copy the full SHA
    8902fad View commit details
    Browse the repository at this point in the history

Commits on Mar 29, 2019

  1. ifc: re-export shell from Purebred.System.Process 

    Re-export 'shell' from Purebred.System.Process so that we can avoid
directly importing System.Process.Typed anywhere (except the
aforementioned module).  We want to avoid using typed-process
directly; instead we want to ensure we use our own variants that
taint the process output.

Part of: #269
    @frasertweedale
    frasertweedale committed Mar 29, 2019
    Configuration menu
    Copy the full SHA
    3b488c9 View commit details
    Browse the repository at this point in the history

  2. HACKING - add policy to avoid System.Process.Typed 

    Part of: #269
    @frasertweedale
    frasertweedale committed Mar 29, 2019
    Configuration menu
    Copy the full SHA
    90ae5dc View commit details
    Browse the repository at this point in the history